Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Sign In Create an Account Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

Article Number: 000135299

iDRAC7 | iDRAC8 | RED007 error when applying latest iDRAC firmware from Out of Band interface

Summary: iDRAC update fails with the following error RED007: Unable to verify Update Package signature. Due to change to the digital signature, Workaround must be used to complete the update.

This article may have been automatically translated. If you have any feedback regarding its quality, please let us know using the form at the bottom of this page.

Article Content

Symptoms

 

The following article provides information about how to update an iDRAC if it fails with error - RED007: Unable to verify Update Package signature


iDRAC7 and iDRAC8 firmware update jobs fail with "RED007: Unable to verify Update Package signature" if the following conditions are met:
  • Currently installed iDRAC firmware is 2.30.30.30 or older.
  • The iDRAC firmware update is being applied through Out of Band interface.
  • iDRAC firmware payload is 2.61.60.60 or newer.

SLN316137_en_US__1JQ-RED007-Signature

 Fig 1- RED007: Unable to verify Update Package signature.

Also, the error message will also get populated within the Lifecycle Controller Logs with additional details regarding failure.

SLN316137_en_US__2LCLOG-RED007-Signature

 Fig 2 - RED007: Unable to verify Update Package signature.

 



Detailed Description:

The Update Package security signature cannot be verified. 

Systems Management Applications that leverage Out of Band update methods (ex: OpenManage Essentials, OpenManage Enterprise, Chassis Manager Controller) will encounter this failure as well.

Resolution:

iDRAC7 and iDRAC8 Dell Update Packages (DUP) no longer carry SHA-1 digital signatures. This DUP change was introduced in iDRAC firmware 2.61.60.60 and later. iDRAC7 and iDRAC8 version 2.40.40.40 or later added support to verify the SHA256 signatures. iDRAC must be running one of the following versions to support SHA-256 DUP payloads through Out of Band updates.

 

Cause

-

Resolution


Workarounds:

Leverage one of the following workarounds to update to the latest iDRAC firmware on impacted systems: 

  • Update to latest iDRAC release through In-Band interface (Operating System Dell update package).
  • Right-click and Extract the latest iDRAC Dell update package and update using the…/payload/firmimg.d7 through iDRAC Out of Band interface.
  • Step update the iDRAC version using the "Older versions"  from the Support Site bringing your iDRAC up to a version that supports SHA-256 signed Dell update packages before applying the latest update through Out of Band interface.
 

Article Properties

Affected Product
iDRAC7, Lifecycle Controllers, Poweredge FC430, Poweredge FC630, Poweredge FC830, PowerEdge FM120x4 (for PE FX2/FX2s), PowerEdge M630, PowerEdge M630 (for PE VRTX), PowerEdge M830, PowerEdge M830 (for PE VRTX), PowerEdge R220, PowerEdge R230 , PowerEdge R320, PowerEdge R330, PowerEdge R420, PowerEdge R420XR, PowerEdge R430, PowerEdge R520, PowerEdge R530, PowerEdge R530xd, PowerEdge R620, PowerEdge R720, PowerEdge R720XD, PowerEdge R730, PowerEdge R730xd, PowerEdge R820, PowerEdge R830, PowerEdge R920, PowerEdge R930, PowerEdge T130, PowerEdge T320, PowerEdge T330, PowerEdge T420, PowerEdge T430, PowerEdge T620, PowerEdge T630 ...
Last Published Date

24 Sept 2021

Version

4

Article Type

Solution

Back to Top